Mail Security: Reject Messages with Credit Card Info due to PCI
Scanning for emails containing credit card numbers can bounce back with a custom PCI DSS compliance notification. Here is an example email that I got from someone.
Due to PCI DSS Compliance (Payment Card Industry Data Security Standard), we are unable to accept emails that contain credit card information. Under requirement #3 we need to Protect Cardholder Data; email is not a secure transfer of data.
Please contact your account executive via phone to provide your credit card information. If you have previously used a credit card for your purchases and that card number is on file with us, simply send your account executive an email containing just the last 4 digits of that credit card.
For more information on PCI DSS Compliance, please visit the following website:
If you feel you have received this message in error, please contact your account executive.
Credit Card Security Department
Bob Alfson commented
Great suggestion, John! I have no remaining votes, but the decision to do this should be a no-brainer for Astaro. It will require adding new technology though, so I'd be surprised to see it this year.
Cheers - Bob